From 0b45043dcd72ed1f9276e6a2c580d5e2181f58c3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 24 Feb 2022 03:48:39 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-REQUESTRETRY-2411026 --- package-lock.json | 21 +++++++++++---------- package.json | 2 +- 2 files changed, 12 insertions(+), 11 deletions(-) diff --git a/package-lock.json b/package-lock.json index 3cc28404..5e16db22 100644 --- a/package-lock.json +++ b/package-lock.json @@ -6730,13 +6730,19 @@ } }, "requestretry": { - "version": "4.0.0", - "resolved": "https://registry.npmjs.org/requestretry/-/requestretry-4.0.0.tgz", - "integrity": "sha512-ST8m0+5FQH2FA+gbzUQyOQjUwHf22kbPQnd6TexveR0p+2UV1YYBg+Roe7BnKQ1Bb/+LtJwwm0QzxK2NA20Cug==", + "version": "7.0.0", + "resolved": "https://registry.npmjs.org/requestretry/-/requestretry-7.0.0.tgz", + "integrity": "sha512-g1Odu3IBKb6fYQog+HLy5FZ1CMwejIpD0iX1u1qXLsRj8TeQmFCpX9pTe50qhIirKvx1mcmoAeuLBFXLlBw6vA==", "requires": { "extend": "^3.0.2", - "lodash": "^4.17.10", - "when": "^3.7.7" + "lodash": "^4.17.15" + }, + "dependencies": { + "lodash": { + "version": "4.17.21", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", + "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==" + } } }, "require-directory": { @@ -8350,11 +8356,6 @@ "extsprintf": "^1.2.0" } }, - "when": { - "version": "3.7.8", - "resolved": "https://registry.npmjs.org/when/-/when-3.7.8.tgz", - "integrity": "sha1-xxMLan6gRpPoQs3J56Hyqjmjn4I=" - }, "which": { "version": "1.3.1", "resolved": "https://registry.npmjs.org/which/-/which-1.3.1.tgz", diff --git a/package.json b/package.json index 88c2321c..a127c972 100644 --- a/package.json +++ b/package.json @@ -53,7 +53,7 @@ "promise-retry": "^1.1.1", "request": "^2.88.0", "request-promise-native": "^1.0.5", - "requestretry": "^4.0.0", + "requestretry": "^7.0.0", "touch": "^3.1.0", "valid-url": "^1.0.9" },